MAL-2025-192602 Malicious code in plugin-senna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec44b28e2a98490c65ae2fbece390c2a69e10ce7635599d405977501ee25277e The package plugin-senna was found to contain malicious code. Source: ghsa-malware d7aaf417fb3dc9c862b43e668d1946f17795e33cfe873f11db2d309776b93b06 A...

MAL-2025-192600 Malicious code in tailwind-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50a9b7a9c02e83e0b4145dc9caaa9d04b407a199ae5d54b9f544f91397980966 The package tailwind-variables was found to contain malicious code. Source: ghsa-malware...

Malicious code in sds-auth-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c30a562f838b9db64453d7276cc2e0f4f63c1810fed94fd3e672a90e00d720b1 The package sds-auth-ui was found to contain malicious code. Source: ghsa-malware 4ebd619fe42c2229ad69655d504fa4e869ba861d01647c67418e624e066e0db2 An...

MAL-2025-192577 Malicious code in sd-skbms (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d7af5c9829af6d62bf3237e014e1a9a6cbcd30be7eb56096229f226428f607 The package sd-skbms was found to contain malicious code. Source: ghsa-malware 9cf1a086ee102f5bbaa7b18b6512f3457de46a88a240dd3acda1bcfffe28f58c Any...

Malicious code in eslint-config-zoo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20693f27e329a7fcc147d2a795f91732a8aca8b142bd27f0ec38803814ae388a The package eslint-config-zoo was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192558 Malicious code in eslint-config-zoo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20693f27e329a7fcc147d2a795f91732a8aca8b142bd27f0ec38803814ae388a The package eslint-config-zoo was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192566 Malicious code in shopify-monorail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aef2f1cf1e314cd9c5336d39ab49f2906fba52d48adadeed13adb5cf4104aa6d The package shopify-monorail was found to contain malicious code. Source: ghsa-malware fedb52b0658528a4cece77bf4ef96fff3b11449dbd45c44084d4308b1e4e3f...

MAL-2025-192545 Malicious code in bfruitmaliciousxmlparser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff72c0a1c73026b834ec6a3b7d7cb8a31e1e07346126733651319019917d1f91 The package bfruitmaliciousxmlparser was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192403 Malicious code in allow-deny (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 512611dc9091a6cb708a796ffa1ff4047634ff63ee34231b092411ec45e57132 The package allow-deny was found to contain malicious code. Source: ghsa-malware eacee1962bd7ee456809cbd1fec30a8feb4fe397bf9e945ff4f42a8331cab117 Any...

MAL-2025-192410 Malicious code in facts-base (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd985aa898a134a3edaeb33d9629378a215a674e8110bb88fbbdfce59c8883e The package facts-base was found to contain malicious code. Source: ghsa-malware 11ed9b0a6622d128df892c963646c0dd03c4a65ddd22b4ac0aebea5d9f4b0adc Any...

MAL-2025-192414 Malicious code in mongo-decimal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d31ef468b36fa90f39d081db22602ad19c8c84bfa3416e3b471eebaaad2919bf The package mongo-decimal was found to contain malicious code. Source: ghsa-malware e32897d62825ec82598cd1de92099161013a0fc84c60add6ec1c9496320ab58d...

Malicious code in callback-hook (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b89f8889dc19bc6058a5fbd01a2ff7d154ae3229f128981e84a24bdef3f4daf The package callback-hook was found to contain malicious code. Source: ghsa-malware 1364de9f464fd8aded92e338cbdd79f31c716643bb6fb136bca46a04939132f1...

Malicious code in rum-events-format (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6a17ba09614cd69d096859385577957b2737a3dce290dda9712c51fd7179c5 The package rum-events-format was found to contain malicious code. Source: ghsa-malware...

Malicious code in seeds-random (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 795bbcfb5b0465693171101c152402cfb2b6c877bc4359dbb68b2844b905bcd9 The package seeds-random was found to contain malicious code. Source: ghsa-malware 47de9449cd7355e6e5c74ef85fbc39aceee380dfb0dbbb1f557dda15431d1ff6 A...

MAL-2025-192310 Malicious code in node-tailwind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e33ff6b33caa8bdc3ee6c472bd1b239208b9fe59a85eecb30c997603310a8839 The package node-tailwind was found to contain malicious code. Source: ghsa-malware 81db0310d2ba64ce743a9bcf517fc3564612f97078d7b41ada94923aea6f8e4a...

Malicious code in multer-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 653a6b2d3d4620d665c1de60de57e8b94bdc7e3521eb42323c38bd3f5a6c2989 The package multer-cli was found to contain malicious code. Source: ghsa-malware 09308572c706ad725ba1ffe9eba38c5dafc921c2b48e5f8c14e2a2374839e0e5 Any...

Malicious code in @shr3k/tdspt-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9970d2332c5e9ef4f3faff216f48d253ce2572e8b7f090b144d1dfa2749b15b1 The package @shr3k/tdspt-helper was found to contain malicious code. Source: ghsa-malware...

MAL-2025-191466 Malicious code in rpc-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eca28ab1eabeac24c0ce55063ac151338d0255fcc2c8f74909566c8c3a3a8b1f The package rpc-validator was found to contain malicious code. Source: ghsa-malware 318ca2489ffa297599695ecb6b29c76c63bb61b59d5380b1092213774438e35d...

MAL-2025-191458 Malicious code in @medusajs/medusa-oas-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48124e119c7f2c21e744172a5901266335824c5ceac7a1c631805772baa3798a The package @medusajs/medusa-oas-cli was found to contain malicious code. Source: ghsa-malware...

MAL-2025-191451 Malicious code in @devx-commerce/plugin-discounts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74de4ea6b81994c916a9fecaea82b1fa9c5a8bf24ad75dc6c755122b821ec169 The package @devx-commerce/plugin-discounts was found to contain malicious code. Source: ghsa-malware...